"Microsoft Bug Bounty Payouts Increased to $16.6 Million in Past Year"
Between 2020 and 2023, Microsoft says it paid approximately $13 million annually through bug bounty programs. However, between July 1, 2023, and June 30, 2024, the amount increased to $16.6 million for the past year. This brings the total paid out by Microsoft since 2018 to $75.5 million. Microsoft noted that over the past year, it has rewarded 343 researchers from 55 countries with more than 1,300 eligible vulnerability reports. The biggest single reward paid out by the company was $200,000. Microsoft's 18 bug bounty programs cover products and services such as Azure, Microsoft 365, Windows, Power Platform, Dynamics 365, Edge, and Xbox. The company has promised to continue improving its bug bounty programs based on feedback received from researchers.
SecurityWeek reports: "Microsoft Bug Bounty Payouts Increased to $16.6 Million in Past Year"